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Alerting Abstract EP Al 

NOVELTY - An authentication unit (114) of a source device (110) 
authenticates a destination device (130) as a strongly protected device, 
when a certificate for public key from the destination device is verified 
successfully with available public key of a certifying authority (CAPK) . 
The destination device is authenticated as weakly protected device, when 
the certificate is verified successfully with locally available public key 
(SPK). 

DESCRIPTION - INDEPENDENT CLAIMS are included for the following: 

1. Remote device authentication method; and 

2. Computer program product for authenticating remote device. 

USE - Scalable content protection enabled device such as audio/video 
receivers and players, set top boxes, general purpose computers, mobile 
telephones, Internet applications. 

ADVANTAGE - By authenticating the devices as weakly protected and 
strongly protected devices, the data is transmitted securely between the 
devices. Hence, data transfer efficiency is enhanced. 

DESCRIPTION OF DRAWINGS - The figure shows a schematic view of the 
scalable content protection enabled device. 

110 Source device 

114 Authentication unit 

130 Destination device 

Technology Focus 

INDUSTRIAL STANDARDS - The connection between the source and destination 
devices is established according to IEEE 1394, 802.11, HIPERLAN or 
Bluetooth standards. 
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Original Abstracts: 

A first device (110) arranged for exchanging data with a second device 
(130). The first device (110) receives from the second device (130) a 
certificate comprising a public key (UPK) for the second device. The first 
device (110) then authenticates the second device (130) as a strongly 
protected device upon a successful verification of the received certificate 
with a public key (CAPK) of a Certifying Authority, if the public key of 
the Certifying Authority is available, and authenticates the second device 
(130) as a weakly protected device upon a successful verification of the 
received certificate with a locally available public key (SPK) . The second 
device (130) does the same to achieve mutual authentication. Having 
authenticated each other, the devices (110, 130) can securely set up 
session keys and exchange data. The data preferably has associated DRM 
rules . 

A first device (110) arranged for exchanging data with a second device 
(130). The first device (110) receives from the second device (130) a 
certificate comprising a public key (UPK) for the second device. The first 
device (110) then authenticates the second device (130) as a strongly 
protected device upon a successful verification of the received certificate 



with a public key (CAPK) of a Certifying Authority, if the public key of 
the Certifying Authority is available, and authenticates the second device 
(130) as a weakly protected device upon a successful verification of the 
received certificate with a locally available public key (SPK) . The second 
device (130) does the same to achieve mutual authentication. Having 
authenticated each other, the devices (110, 130) can securely set up 
session keys and exchange data. The data preferably has associated DRM 
rules . 

A first device (**110**) arranged for exchanging data with a second device 
(**130**). The first device (**110**) receives from the second device 
(**130**) a certificate comprising a public key (UPK) for the second 
device. The first device (**110**) then authenticates the second device 
(**130**) as a strongly protected device upon a successful verification of 
the received certificate with a public key (CAPK) of a Certifying 
Authority, if the public key of the Certifying Authority is available, and 
authenticates the second device (**130**) as a weakly protected device upon 
a successful verification of the received certificate with a locally 
available public key (SPK). The second device (**130**) does the same to 
achieve mutual authentication. Having authenticated each other, the devices 
(**110, 130**) can securely set up session keys and exchange data. The data 
preferably has associated DRM rules. 

A first device (110) arranged for exchanging data with a second device 
(130). The first device (110) receives from the second device (130) a 
certificate comprising a public key (UPK) for the second device. The first 
device (110) then authenticates the second device (130) as a strongly 
protected device upon a successful verification of the received certificate 
with a public key (CAPK) of a Certifying Authority, if the public key of 
the Certifying Authority is available, and authenticates the second device 
(130) as a weakly protected device upon a successful verification of the 
received certificate with a locally available public key (SPK) . The second 
device (130) does the same to achieve mutual authentication. Having 
authenticated each other, the devices (110, 130) can securely set up 
session keys and exchange data. The data preferably has associated DRM 
rules . 

Selon 1' invention, un premier dispositif (110) est concu pour echanger des 
donnees avec un deuxieme dispositif (130) . Le premier dispositif (110) 
recoit du deuxieme dispositif (130) un certificat contenant une cle 
publique (UPK) destinee au deuxieme dispositif. Le premier dispositif (110) 
authentifie alors le deuxieme dispositif (130) en tant que dispositif 
fortement protege en cas de verification reussie du certificat recu 
contenant une cle publique (CAPK) d'un organisme de certification (si la 
cle publique de 1' organisme de certification est disponible) , et 
authentifie le deuxieme dispositif (130) en tant que dispositif faiblement 
protege en cas de verification reussie du certificat recu contenant une cle 
publique locale (SPK) . Le deuxieme dispositif (130) effectue les memes 
operations afin de realiser une authentif ication mutuelle. Lorsque lesdits 
dispositif s (110, 130) ont realise 1 1 authentif ication mutuelle, ces 
derniers peuvent creer des cles de session de maniere securisee et echanger 
des donnees. Lesdites donnees comportent de preference des regies DRM. 
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